sum-catnip / kptnhook
windows kernelmode driver to inject dll into each and every process and perform systemwide function hooking
☆52Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for kptnhook
- A poc that abuses Enclave☆36Updated 2 years ago
- windows kernel pagehook☆38Updated 2 years ago
- Based on minhook☆27Updated last year
- POC Hook of nt!HvcallCodeVa☆50Updated last year
- direct systemcalls with a modern c++20 interface.☆42Updated last year
- Windows PDB parser for kernel-mode environment.☆90Updated last year
- ☆70Updated 2 years ago
- detect hypervisor with Nmi Callback☆34Updated 2 years ago
- Windows Research Kernel VS2022 Solution☆24Updated 2 months ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆46Updated last year
- clearing traces of a loaded driver☆44Updated 2 years ago
- ☆69Updated 2 years ago
- x64 Windows implementation of virtual-address to physical-address translation☆41Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- Bypasses for Windows kernel callbacks PatchGuard protection☆42Updated 3 years ago
- A method to Disable DSE using .data ptr hooks☆26Updated 9 months ago
- ☆44Updated 2 years ago
- PAGE_GUARD based hooking library☆40Updated 2 years ago
- Kernel Level NMI Callback Blocker☆36Updated 2 months ago
- bootkit驱动映射,三环进程注入加载指定模块☆11Updated last month
- A Simple Example☆20Updated 5 years ago
- Compile-Time Strings and Numbers Encryption for C++20☆39Updated 11 months ago
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆20Updated 9 months ago
- ☆32Updated last year
- 将驱动映射到会话空间☆33Updated 2 years ago
- Only for Stress-Testing☆22Updated 2 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year